Skip to content

Privacy Policy

Last updated: June 18, 2026

This Privacy Policy describes how Abstract, a sole proprietorship firm registered under the laws of India, represented by its sole proprietor, Ayush Tiwari (hereinafter referred to as the "Firm", "we", "us", or "our"), collects, uses, stores, processes, and shares information compiled from users accessing or registering on the online marketplace platform BentoNook (bentonook.com, hereinafter referred to as the "Platform").

We are deeply committed to protecting your personal data and privacy. This document has been constructed in strict compliance with Section 43A of the Information Technology Act, 2000, Regulation 4 of the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and other applicable data protection regulations in India.

1. Information We Collect

To provide a seamless multi-vendor e-commerce and logistics infrastructure, we collect two broad categories of information:

A. Information Provided Voluntarily by You

For Buyers: When you purchase items or create an account, we collect your name, shipping address, billing address, telephone/mobile number, and email address.

For Independent Vendors (KYC Data): To satisfy financial regulatory compliances, vendors must provide verification documents. This includes legal individual/corporate names, Permanent Account Number (PAN), Goods and Services Tax Identification Number (GSTIN), business bank account details (account number, IFSC code, cancelled cheque), and physical warehouse/pickup addresses.

B. Information Collected Automatically

Device & Usage Data: When you browse the Platform, we automatically collect details about your device, including your IP address, browser type, operating system, pages visited, and timestamps.

Cookies: We use functional cookies to handle sessions, preserve items inside shopping carts, and remember platform preferences.

2. How We Use Your Information

We use the collected data strictly for operational, legal, and transactional requirements:

  • To set up, manage, and secure Buyer and Vendor accounts.
  • To process, route, and fulfill orders executed across the marketplace.
  • To verify the corporate or individual identity of onboarding Vendors (KYC checks) to prevent fraud.
  • To settle split payments and distribute payout balances smoothly through integrated banking channels.
  • To communicate tracking parameters, transaction invoices, and customer service updates.

3. Data Sharing and Third-Party Disclosures

As an intermediary multi-vendor marketplace, we do not sell your personal data to third-party marketing firms. However, your data is shared securely with designated infrastructure operators to execute your transactions:

  • Between Buyers and Vendors: When an order is placed, the designated Vendor receives the Buyer’s name, shipping address, and phone number to prepare and pack the shipment.
  • With Payment Aggregators: Financial transactions are processed via our authorized payment partners integrated under the corporate trade account of Abstract. Your billing parameters are transmitted securely via encrypted tokens.
  • With Logistics Aggregators (Shiprocket): Order addresses and contact coordinates are dynamically synced via API hooks with Shiprocket and its affiliated courier networks to execute physical pickup from the Vendor and doorstep delivery to the Buyer.
  • Legal & Regulatory Authorities: We may disclose your data if required by law, court order, or formal request from law enforcement or the Reserve Bank of India (RBI).

4. Data Storage and Localization Compliance

In absolute compliance with Indian data security standards and Reserve Bank of India (RBI) mandates, all transaction logs, financial data, and personal identification data are securely processed and stored within local data storage networks physically located inside the boundaries of India. We implement industry-standard Secure Sockets Layer (SSL/TLS 1.2 or higher) encryption protocols across the entire Platform to safeguard text and payload transmissions.

5. Data Retention

We retain user data for as long as your account remains active or as required to fulfill the business objectives outlined in this policy. Vendors should note that certain corporate KYC logs, transaction ledgers, and billing invoices must be legally archived for designated durations to comply with Indian tax (GST/Income Tax) regulations.

6. Your Rights

Users have the right to review, update, or correct their personal profiles directly via the account settings panel on BentoNook. If you wish to permanently delete your account profile or request that we remove your information from our active databases, you can reach out to our support channel. Please note that data required for ongoing transaction settlements, active fraud investigations, or mandatory statutory record-keeping cannot be purged immediately.

7. Changes to this Privacy Policy

The Firm reserves the right to modify or replace this Privacy Policy at any time. Any changes made will be posted directly on this page with an updated "Last Updated" timestamp. We encourage users to periodically review this page to stay informed about how we protect their personal data.

8. Grievance Redressal Mechanism

If you have any questions, feedback, concerns regarding data handling, or wish to report a data breach, please get in touch with our designated Grievance Officer:

Name: Ayush Tiwari

Designation: Grievance Officer / Proprietor

Firm Name: Abstract

Email: support@bentonook.com

Address: 6th Floor, 647, Golden Trade Center, New Rajendra Nagar, Raipur, Chhattisgarh — 492001